#VU15451 Information disclosure in macOS


Published: 2018-10-22 | Updated: 2018-10-31

Vulnerability identifier: #VU15451

Vulnerability risk: Low

CVSSv3.1: 3.8 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2018-3646

CWE-ID: CWE-200

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
macOS
Operating systems & Components / Operating system

Vendor: Apple Inc.

Description

The vulnerability allows an adjacent attacker to obtain potentially sensitive information on the target system.

The weakness exists on the systems with microprocessors utilizing speculative execution and address translations due to an error in Hypervisor. An adjacent attacker can access information residing in the L1 data cache via a terminal page fault and a side-channel analysis.

Mitigation
Update to version 10.14.1.

Vulnerable software versions

macOS: 10.13.6 17G66, 10.12.6 16G29

External links
http://support.apple.com/en-us/HT209193

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple vulnerabilities in Oracle Sun Systems Products Suite
Information disclosure in D-Link DIR-620
Information disclosure in xen (Alpine package)
OpenSUSE Linux update for the Linux Kernel
OpenSUSE Linux update for the Linux Kernel
Red Hat Enterprise Linux 6.7 Extended Update Support update for kernel
Red Hat Enterprise MRG 2 update for kernel-rt
Red Hat Enterprise Linux 7 update for kernel-rt
Red Hat Enterprise Linux 6.4 Advanced Update Support update for kernel
Red Hat Enterprise Linux 6.5 Advanced Update Support update for kernel